From: Michael Biebl <biebl@debian.org>
Date: Tue, 19 Nov 2019 08:10:23 +0000 (+0100)
Subject: udev: drop SystemCallArchitectures=native from systemd-udevd.service
X-Git-Tag: archive/raspbian/247.3-3+rpi1^2~6
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=15a9bde5440406227d34495c6f13e05896f087f3;p=systemd.git

udev: drop SystemCallArchitectures=native from systemd-udevd.service

We can't really control what helper programs are run from other udev
rules. E.g. running i386 binaries under amd64 is a valid use case and
should not trigger a SIGSYS failure.

Closes: #869719

Gbp-Pq: Topic debian
Gbp-Pq: Name udev-drop-SystemCallArchitectures-native-from-systemd-ude.patch
---

diff --git a/units/systemd-udevd.service.in b/units/systemd-udevd.service.in
index 225eac21..f541ff68 100644
--- a/units/systemd-udevd.service.in
+++ b/units/systemd-udevd.service.in
@@ -35,7 +35,6 @@ MemoryDenyWriteExecute=yes
 RestrictAddressFamilies=AF_UNIX AF_NETLINK AF_INET AF_INET6
 RestrictRealtime=yes
 RestrictSUIDSGID=yes
-SystemCallArchitectures=native
 LockPersonality=yes
 IPAddressDeny=any
 @SERVICE_WATCHDOG@